Threat intelligence is knowledge based on fact and evidence about the threat situation to the company from outside. TI knowledge primarily includes context, mechanisms, indicators, implications and recommendations for action against current threats. Services that make this information available are called Threat Intelligence Service. Data on threats and attacks are collected and evaluated worldwide. The sources used are honeypots, sinkholes and research teams. TI information supports SIEM systems and NG firewalls with automated evaluation, as does security analysts in evaluating and avoiding attacks.
That is only a fraction of what the SIEM & SOC Technology division is all about. Do you want to set up or improve your own SOC? Do you need a coordinated incident response concept to supplement it? Would you like to harness the power of threat intelligence?
Then you should contact us.Get your questions answered!